M-Labs
/
nix-scripts
9
0
Fork 9
Code Issues 6 Pull Requests Releases Wiki Activity

Compare commits

base: M-Labs:9d29f4fcccd28653f3bc6240b99d84dd11d03d8e
Branches Tags
M-Labs:master
...
compare: M-Labs:b47e660c2ff8da514a9b303170788cdf5c37b779
Branches Tags
M-Labs:master

2 Commits
9d29f4fccc ... b47e660c2f

Author SHA1 Message Date
Sebastien Bourdeauducq b47e660c2f enable homu 2019-05-02 13:54:21 +08:00
Sebastien Bourdeauducq ad2fe47688 homu: do not put configuration file in nix 
* issue with multiline string values
* slight security problem
 2019-05-02 13:53:34 +08:00
2 changed files with 14 additions and 48 deletions
Show Stats Expand all files Collapse all files

16
nixbld-etc-nixos/configuration.nix
View File

@ -205,7 +205,7 @@ ACTION=="add", SUBSYSTEM=="tty", \
"lab.m-labs.hk" = { "lab.m-labs.hk" = {
addSSL = true; addSSL = true;
useACMEHost = "nixbld.m-labs.hk"; useACMEHost = "nixbld.m-labs.hk";
locations."/".proxyPass = "http://192.168.1.100"; locations."/homu/".proxyPass = "http://127.0.0.1:54856/";
}; };
"nixbld.m-labs.hk" = { "nixbld.m-labs.hk" = {
forceSSL = true; forceSSL = true;
@ -245,16 +245,10 @@ ACTION=="add", SUBSYSTEM=="tty", \
}; };
}; };
# services.homu = { services.homu = {
# enable = true; enable = true;
# # See https://github.com/servo/homu/blob/master/cfg.sample.toml config = "/etc/nixos/secret/homu.toml";
# config = { };
# max_priority = 9001;
# github = {
# access_token = "...";
# };
# };
# };
# This value determines the NixOS release with which your system is to be # This value determines the NixOS release with which your system is to be
# compatible, in order to avoid breaking some software such as database # compatible, in order to avoid breaking some software such as database

46
nixbld-etc-nixos/homu/nixos-module.nix
View File

@ -2,40 +2,7 @@
with lib; with lib;
let let
homu = pkgs.callPackage ./pkg.nix {}; homu = pkgs.callPackage ./pkg.nix {};
toToml = key: value:
let valueString =
if builtins.isString value
then "\"" + (builtins.replaceStrings ["\"" "\\"] ["\\\"" "\\\\"] value) + "\""
else toString value;
in "${key} = ${valueString}\n";
defaultConfig = {
db = {
file = "/var/db/homu/main.db";
};
};
cfg = config.services.homu; cfg = config.services.homu;
homuConfig = defaultConfig // cfg.config;
configFilter = f:
filterAttrs (key: value: f value) homuConfig;
topLevelConfig =
configFilter (value: ! builtins.isAttrs value);
configSections =
configFilter (value: builtins.isAttrs value);
configFile = builtins.toFile "config.toml" (
builtins.concatStringsSep "" (
(attrsets.mapAttrsToList toToml topLevelConfig) ++
(builtins.concatLists (attrsets.mapAttrsToList
(sectionName: sectionConfig:
[ "[${sectionName}]\n" ] ++
(attrsets.mapAttrsToList toToml sectionConfig)
) configSections)
))
);
dbDir = dirOf homuConfig.db.file;
in in
{ {
@ -45,16 +12,21 @@ in
default = false; default = false;
description = "Enable the bot"; description = "Enable the bot";
}; };
dbDir = mkOption {
type = types.str;
default = "/var/db/homu";
description = "Path to the database file (use the same path in config.toml)";
};
config = mkOption { config = mkOption {
description = "Structured data for config.toml"; description = "Location of config.toml";
type = with types; attrsOf unspecified; type = types.str;
}; };
}; };
config = mkIf cfg.enable { config = mkIf cfg.enable {
users.users.homu = { users.users.homu = {
group = "homu"; group = "homu";
home = dbDir; home = cfg.dbDir;
createHome = true; createHome = true;
}; };
users.groups.homu = {}; users.groups.homu = {};
@ -65,7 +37,7 @@ in
after = [ "network.target" ]; after = [ "network.target" ];
serviceConfig = { serviceConfig = {
Type = "simple"; Type = "simple";
ExecStart = "${homu}/bin/homu -c ${configFile}"; ExecStart = "${homu}/bin/homu -c ${cfg.config}";
Restart = "always"; Restart = "always";
RestartSec = "5sec"; RestartSec = "5sec";